46 matches found
vorbis-tools security update
1:1.4.0-29 - fix out-of-bounds read in oggenc CVE-2023-43361...
FreeBSD : vorbistools -- heap buffer overflow in oggenc (a1a1f81c-7c13-11ee-bcf1-f8b156b6dcc8)
The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the a1a1f81c-7c13-11ee-bcf1-f8b156b6dcc8 advisory. - Buffer Overflow vulnerability in Vorbis-tools v.1.4.2 allows a local attacker to execute arbitrary co...
vorbistools -- heap buffer overflow in oggenc
Frank-Z7 reports: Heap buffer overflow when vorbis-tools/oggenc converts WAV files to Ogg files...
SUSE CVE-2007-4066
Multiple buffer overflows in Xiph.Org libvorbis before 1.2.0 allow context-dependent attackers to cause a denial of service or have other unspecified impact via a crafted OGG file, aka trac Changesets 13162, 13168, 13169, 13170, 13172, 13211, and 13215, as demonstrated by an overflow in oggenc.ex...
SUSE CVE-2014-9639
Integer overflow in oggenc in vorbis-tools 1.4.0 allows remote attackers to cause a denial of service crash via a crafted number of channels in a WAV file, which triggers an out-of-bounds memory access...
SUSE CVE-2014-9638
oggenc in vorbis-tools 1.4.0 allows remote attackers to cause a denial of service divide-by-zero error and crash via a WAV file with the number of channels set to zero...
SUSE CVE-2014-9640
oggenc/oggenc.c in vorbis-tools 1.4.0 allows remote attackers to cause a denial of service out-of-bounds read via a crafted raw file...
SUSE CVE-2015-6749
Buffer overflow in the aiffopen function in oggenc/audio.c in vorbis-tools 1.4.0 and earlier allows remote attackers to cause a denial of service crash via a crafted AIFF file...
oggenc in vorbis-tools 1.4.0 allows remote attackers to cause a denial of service (divide-by-zero error and crash) via a WAV file with the number of channels set to zero.
...
Buffer overflow in the aiff_open function in oggenc/audio.c in vorbis-tools 1.4.0 and earlier allows remote attackers to cause a denial of service (crash) via a crafted AIFF file.
...
Integer overflow in oggenc in vorbis-tools 1.4.0 allows remote attackers to cause a denial of service (crash) via a crafted number of channels in a WAV file which triggers an out-of-bounds memory access.
...
Vorbis Tools oggenc 1.4.0 - .wav Denial of Service Exploit
Exploit for linux platform in category dos / poc vorbis-tools oggenc vulnerability ================ Author : qflb.wu =============== Introduction: ============= The Vorbis Tools package contains command-line tools useful for encoding, playing or editing files using the Ogg CODEC. Affected version...
Vorbis Tools oggenc 1.4.0 - '.wav' Denial of Service
vorbis-tools oggenc vulnerability ================ Author : qflb.wu =============== Introduction: ============= The Vorbis Tools package contains command-line tools useful for encoding, playing or editing files using the Ogg CODEC. Affected version: ===== 1.4.0 Vulnerability Description:...
Vorbis Tools oggenc 1.4.0 - .wav Denial of Service
Vorbis Tools oggenc 1.4.0 - .wav Denial of Service vorbis-tools oggenc vulnerability ================ Author : qflb.wu =============== Introduction: ============= The Vorbis Tools package contains command-line tools useful for encoding, playing or editing files using the Ogg CODEC. Affected...
vorbis-tools, opus-tools -- multiple vulnerabilities
Paris Zoumpouloglou reports: I discovered an integer overflow issue in oggenc, related to the number of channels in the input WAV file. The issue triggers an out-of-bounds memory access which causes oggenc to crash. Paris Zoumpouloglou reports: A crafted WAV file with number of channels set to 0...
vorbis-tools: denial of service
CVE-2014-9638 denial of service A flaw in oggenc allows attackers to cause a denial of service divide-by-zero error and crash via a WAV file with the number of channels set to zero. - CVE-2014-9639 denial of service Integer overflow in oggenc allows attackers to cause a denial of service crash...
Updated vorbis-tools packages fix security vulnerabilities
Updated vorbis-tools package fixes security vulnerabilities: oggenc in vorbis-tools 1.4.0 allows remote attackers to cause a denial of service divide-by-zero error and crash via a WAV file with the number of channels set to zero CVE-2014-9638. Integer overflow in oggenc in vorbis-tools 1.4.0 allo...
Vorbis Tools Integer Overflow Vulnerability
vorbis-tools is a set of Ogg an audio compression format vorbis tools. An integer overflow vulnerability exists in vorbis-tools version 1.4.0 of oggenc. A local attacker can exploit this vulnerability to cause a denial of service crash by means of a specially crafted channel number in a WAV file...
Vorbis Tools Denial of Service Vulnerability (CNVD-2015-00651)
vorbis-tools is a set of Ogg an audio compression format vorbis tools. A security vulnerability exists in the oggenc/oggenc.c file in vorbis-tools version 1.4.0. A local attacker can exploit this vulnerability to cause a denial of service out-of-bounds read with a specially crafted raw file...
DEBIAN-CVE-2014-9640
oggenc/oggenc.c in vorbis-tools 1.4.0 allows remote attackers to cause a denial of service out-of-bounds read via a crafted raw file...